TXOne Networks
Hero background

CVE-2023-46380

Last Updated: November 3, 2023

Loytec L-INX Automation Servers, L-IOB I/O Controllers, L-VIS Touch Panels Cleartext Transmission of Sensitive Information Vulnerability

CVE IDCVE-2023-46380
SeverityHigh
Affected VendorsLOYTEC electronics GmbH
Affected ProductsLINX-212 firmware 6.2.4, LVIS-3ME12-A1 firmware 6.2.2, LIOB-586 firmware 6.2.3
Vulnerability DetailsPassword change request on the web interface on LOYTEC devices is sent in clear text over HTTP, and this allows information theft and account takeover via network sniffing.
Solutions & RulesN/A
CreditChizuru Toyama of TXOne Networks

Questions About This Advisory?

Our PSIRT team is here to help with security-related inquiries.

security@txone.com